said by HA Nut:
FWIW, while it would be nice for AxCrypt to be greater than AES-128, I am not aware that it is unsafe. If it is, I would like to be aware of any problems it has...
AES-128 is considered by NIST to be secure beyond 2031. The amount of computing power required to discover a 128-bit key is currently FAR greater than all the computing power in the world combined
. If every one of the 7 billion people on the planet tested 1 billion 128 bit keys per second, "The earths population can crack one encryption key (one drive only) in 77,000,000,000,000,000,000,000,000 years! " (from Seagate whitepaper).
AES-256 was recommended for Top-Secret by the NSA, not because 128 is at all vulnerable, but rather as future defense against theoretical Quantum computers employed by an adversary decades from now. A Quantum computer can solve keys in the square root of the time. So 2^128 can be attacked in 2^64 time.
But let's be realistic. Is a super-power in 15 years going to put a multi-billion dollar quantum computer to work cracking into your Lastpass or Keepass2 database to get into your Gmail or online bank account? Aren't you orders of magnitude more likely to have the password leaked via a key-logger or a pair of nosy eyes? Or to simply have the password beaten out of you? --
Any claim that the root of a problem is simple should be treated the same as a claim that the root of a problem is Bigfoot. Simplicity and Bigfoot are found in the real world with about the same frequency. David Wong